⚖️ Terms of Service

1. Acceptance of Terms

By accessing and using RedForge ("Service"), you accept and agree to be bound by the terms and provision of this agreement. If you do not agree to abide by the above, please do not use this service.

2. Description of Service

RedForge is an automated red-teaming platform designed for security testing of Large Language Model (LLM) applications. The Service includes:

• CLI tool for OWASP LLM Top 10 security testing
• Docker containers and Kubernetes deployments
• Security reporting and compliance mapping
• Optional cloud-based scanning services
• Documentation and community support

3. Authorized Use Only

3.1 Permitted Uses

• Testing your own LLM applications and systems
• Security assessments with proper authorization
• Educational and research purposes in controlled environments
• Compliance testing for regulatory frameworks
• Internal security audits and penetration testing

3.2 Prohibited Uses

• Unauthorized Testing: Testing systems without explicit permission
• Malicious Activities: Using RedForge to harm, disrupt, or exploit systems
• Illegal Activities: Any use that violates local, state, or federal laws
• Circumventing Security: Bypassing security measures for unauthorized access
• Commercial Attacks: Using RedForge to gain competitive advantages through unauthorized means

4. User Responsibilities

4.1 Authorization Requirements

You are solely responsible for ensuring you have proper authorization before conducting any security tests. This includes:

• Written permission from system owners
• Compliance with organizational policies
• Adherence to applicable laws and regulations
• Proper scope definition and limitations

4.2 Data Protection

• Protect API keys and sensitive credentials
• Secure scan results and reports
• Comply with data protection regulations (GDPR, CCPA, etc.)
• Implement appropriate access controls

4.3 Reporting Vulnerabilities

If you discover vulnerabilities through legitimate testing:

• Report findings to appropriate stakeholders
• Follow responsible disclosure practices
• Do not exploit vulnerabilities for unauthorized access
• Maintain confidentiality until patches are applied

5. Intellectual Property

5.1 RedForge License

RedForge is licensed under the MIT License. You may:

• Use, copy, modify, and distribute the software
• Use RedForge for commercial purposes
• Create derivative works
• Sell copies of the software

5.2 Attribution Requirements

You must include the original copyright notice and license in all copies or substantial portions of the software.

5.3 Third-Party Content

RedForge may include third-party libraries and components. Each component is subject to its own license terms.

6. Service Availability

6.1 Open Source Commitment

The core RedForge CLI will always be available as open source software under the MIT License.

6.2 Cloud Services

Optional paid cloud services are provided "as-is" with:

• 99.9% uptime SLA for paid accounts
• Scheduled maintenance windows
• 30-day cancellation policy
• Data export capabilities

7. Payment Terms (Paid Services)

7.1 Billing

• Starter Plan: $29/month, billed monthly
• Pro Plan: $99/month, billed monthly
• Enterprise: Custom pricing based on requirements

7.2 Payment Processing

• Payments processed securely through Stripe
• Automatic renewal unless cancelled
• 30-day money-back guarantee
• Refunds processed within 5-7 business days

7.3 Cancellation

• Cancel anytime from account settings
• Service continues until end of current billing period
• No partial refunds for unused time
• Data export available for 30 days after cancellation

8. Disclaimers and Warranties

8.1 "As-Is" Service

RedForge is provided "AS-IS" without warranties of any kind, either express or implied, including but not limited to:

• Merchantability
• Fitness for a particular purpose
• Non-infringement
• Accuracy or completeness of results

8.2 Security Testing Limitations

• No guarantee of finding all vulnerabilities
• False positives and negatives may occur
• Results should be validated by security professionals
• Regular updates needed for new attack patterns

9. Limitation of Liability

9.1 Maximum Liability

In no event shall RedForge or its developers be liable for any damages exceeding the amount paid by you for the Service in the 12 months preceding the claim.

9.2 Excluded Damages

We shall not be liable for:

• Indirect, incidental, or consequential damages
• Loss of profits, data, or business opportunities
• Damages resulting from unauthorized use
• Third-party claims or actions

10. Indemnification

You agree to indemnify and hold harmless RedForge and its developers from any claims, damages, or expenses arising from:

• Your use of the Service
• Violation of these Terms
• Unauthorized security testing
• Infringement of third-party rights

11. Termination

11.1 Termination Rights

We reserve the right to terminate or suspend access to the Service for:

• Violation of these Terms
• Illegal or unauthorized use
• Non-payment of fees
• Abuse of the Service

11.2 Effect of Termination

• Immediate cessation of Service access
• Data deletion after 30-day grace period
• Survival of indemnification and liability provisions

12. Governing Law

These Terms shall be governed by and construed in accordance with the laws of the State of Delaware, United States, without regard to its conflict of law provisions.

13. Changes to Terms

We reserve the right to modify these Terms at any time. Material changes will be communicated via:

• Email notification (for paid users)
• In-app notifications
• GitHub repository updates
• Website announcements

14. Contact Information